···
Log in / Register

Data and Information Security Analyst

Indeed
Full-time
Onsite
No experience limit
No degree limit
Av. Ayrton Senna da Silva, 2656 - Pineville, Pinhais - PR, 83323-290, Brazil
Favourites
Share
Some content was automatically translatedView Original

Description

Job Summary: Work with technical and consultative focus on protecting sensitive data and information, implementing security policies and data governance frameworks. Key Highlights: 1. Leading technology company in Brazil with accelerated growth 2. Dynamic, innovative environment with growth opportunities 3. Values people and encourages continuous development Working Hours: Monday to Friday \- 08:30 AM to 6:00 PM Contract Model: Cooperative Work Regime: Remote **About Solo Network** Solo Network is one of Brazil's largest technology companies, recognized for its accelerated growth and excellence in Digital Security, Cloud, and Corporate Solutions. With over 6\.000 clients and highly qualified teams, we offer a dynamic, innovative environment full of growth opportunities. Here, we value people, encourage continuous development, and collectively build the future of technology. **Job Mission** Work with technical and consultative focus on protecting sensitive data and information, implementing security policies and data governance frameworks. Additionally, responsible for structuring, implementing, and maintaining policies, controls, and technologies aimed at preventing data leaks, ensuring traceability, and achieving compliance with market and regulatory standards. **Responsibilities and Activities** * Work with Microsoft Information Protection (MIP), Microsoft Purview, and Data Loss Prevention (DLP) to identify, classify, and protect sensitive data across data infrastructures, devices, emails, SharePoint, Teams, OneDrive, etc.; * Configure DLP policies based on financial, contractual, and regulatory information (LGPD, SOX, PCI\-DSS); * Continuously improve DLP policies based on events, false positives, and exception cases; * Monitor DLP alerts, conduct analyses, and collaborate with incident response teams; * Support investigations conducted by other teams by providing technical inputs and context regarding DLP policies, classification rules, and potential leakage vectors; * Collaborate with offensive and defensive security teams to ensure prevention use cases are integrated with detection and response mechanisms; * Support the development and maintenance of a Data Governance program aligned with frameworks such as DAMA\-DMBOK; * Work closely with Data Stewards \- professionals designated within business areas who serve as focal points to ensure data quality, appropriate usage, security, and correct classification; * Conduct mapping, categorization, and classification of critical/sensitive data, aligning with domain data owners (e.g., finance, legal, HR); * Implement and maintain taxonomies, glossaries, and information labeling using Purview and MIP; * Ensure data is classified according to its value, criticality, and sensitivity; * Promote formal classification and continuous updates as inputs for policies, audits, and technical controls; * Define and maintain OKRs and maturity indicators related to technical data governance and leak prevention activities, ensuring alignment with departmental strategic objectives; * Evaluate process and control evolution based on maturity levels (e.g., NIST, ISO 27001, DAMA), proposing continuous improvements and prioritizing initiatives based on risk; * Participate in developing and monitoring information security and data protection maturity tracks, focusing on technical evolution and governance; * Lead periodic maturity reviews and propose strategic initiatives for continuous improvement; * Demonstrate results through dashboards, executive reports, and technical evidence; * Develop, review, and maintain Information Classification, Acceptable Use, Retention, and Data Security policies; * Ensure compliance with standards and legislation such as LGPD, GDPR, SOX, HIPAA, PCI\-DSS, ISO 27001:2022, and NIST; * Support internal/external audits with evidence of DLP, classification, and governance compliance; * Conduct training sessions, workshops, and awareness campaigns on secure information usage and classification; * Architect and support implementation of technical and procedural controls for data governance and protection; * Participate in sensitive data mapping projects and suggest reinforcement of preventive controls; * Integrate and enhance monitoring in SIEMs (e.g., Microsoft Sentinel), creating rules, use cases, and effectiveness reports; * Propose and implement continuous improvement cycles based on incidents, recurring events, and coverage gaps. **Requirements and Qualifications** Bachelor's degree in Computer Science, Computer Engineering, Information Systems, or related fields; **Mandatory Certifications:** SC\-900, SC\-400 **Preferred Certifications:** SC\-200, SC\-100, DP\-500

Source:  indeed View original post
João Silva
Indeed · HR

Company

Indeed
João Silva
Indeed · HR

Similar jobs

Cookie
Cookie Settings
Our Apps
Download
Download on the
APP Store
Download
Get it on
Google Play
© 2025 Servanan International Pte. Ltd.